Month: September 2024
Dell has confirmed to BleepingComputer that they are investigating recent claims that it suffered a data breach after a threat actor leaked the data for over 10,000 employees. The allegations were published yesterday by a threat actor named “grep,” who alleges that the computing vendor suffered a “minor data breach” in September 2024, exposing internal employee and…
Read More
Accenture, Jade Global, Google and Vonage are among the coolest exhibitors from Salesforce Dreamforce 2024. Five solution providers and five vendors are among the hottest companies to exhibit at Salesforce Dreamforce 2024. Accenture and Jade Global are among the solution providers to stand out for their work with the San Francisco-based cloud software vendor and…
Read More
Users of macOS 15 ‘Sequoia’ are reporting network connection errors when using certain endpoint detection and response (EDR) or virtual private network (VPN) solutions, and web browsers. The issues are resolved when these tools are deactivated, indicative of incomptibility issues with the network stack. Impacted users on Reddit are describing problems with CrowdStrike Falcon and…
Read More
The site of America’s worst nuclear disaster will soon reopen to exclusively sell power to Microsoft. Here’s what you need to know. Pennsylvania’s Three Mile Island was the site of America’s worst nuclear disaster. In a bold move, the nuclear plant is reopening to exclusively sell power to Microsoft to aid the company’s massive AI…
Read More
“If your name is Emily and your boyfriend went out last night HE CHEATED. Heres [sic] the video for proof,” states a poster seen in Manchester, England this week. My name isn’t Emily, but anyone who comes across such a poster would stop by to take a closer look—it piques curiosity, breeds insecurity, and sparks controversy. And…
Read More
For the week ending Sept. 20, CRN takes a look at the companies that brought their ‘A’ game to the channel including NWN Carousel, Veeam, Confluent, ClearScale and Salesforce. The Week Ending Sept. 20 Topping this week’s Came to Win list is NWN Carousel for a strategic acquisition that expands its presence within the federal…
Read More
Law enforcement authorities have announced the takedown of an international criminal network that leveraged a phishing platform to unlock stolen or lost mobile phones. The phishing-as-a-service (PhaaS) platform, called iServer, is estimated to have claimed more than 483,000 victims globally, led by Chile (77,000), Colombia (70,000), Ecuador (42,000), Peru (41,500), Spain (30,000), and Argentina (29,000).…
Read More
Report finds that many critical infrastructure networks can be breached using simple attacks. Plus, a new MITRE Engenuity tool uses machine learning to infer attack sequences. Meanwhile, CISA will lead a project to standardize civilian agencies’ cyber operations. And get the latest on XSS vulnerabilities, CIS Benchmarks and a China-backed botnet’s takedown! Dive into six…
Read More
In IT environments, some secrets are managed well and some fly under the radar. Here’s a quick checklist of what kinds of secrets companies typically manage, including one type they should manage: Passwords [x] TLS certificates [x] Accounts [x] SSH keys ??? The secrets listed above are typically secured with privileged access management (PAM) solutions…
Read More
An Iranian advanced persistent threat (APT) threat actor likely affiliated with the Ministry of Intelligence and Security (MOIS) is now acting as an initial access facilitator that provides remote access to target networks. Google-owned Mandiant is tracking the activity cluster under the moniker UNC1860, which it said shares similarities with intrusion sets tracked by Microsoft,…
Read More